$ rpki-client -vvf rpki-rsync.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/323430333a626163303a3a2f33322d3438203d3e20313333383135.roa File: 323430333a626163303a3a2f33322d3438203d3e20313333383135.roa (raw, json) Hash identifier: HEWIf8VBw+80Q4rp+6Ysujhm51rVLU6tXVKj84ErweQ= Subject key identifier: 0F:51:3B:11:2A:D9:44:EB:84:C5:E5:D4:BB:2C:B1:79:F4:91:6E:51 Certificate issuer: /CN=EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479 Certificate serial: 0A69294BF3C8D1A51FD5F64B9FA1028A512E1153 Authority key identifier: EB:0B:E2:F2:F4:9F:0E:2E:D0:DC:A4:50:CC:7A:70:E3:7E:6C:44:79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/323430333a626163303a3a2f33322d3438203d3e20313333383135.roa Signing time: Sun 03 May 2026 02:21:44 +0000 ROA not before: Sun 03 May 2026 02:16:44 +0000 ROA not after: Sun 02 May 2027 02:21:44 +0000 asID: 133815 IP address blocks: 2403:bac0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479.crl rsync://rpki-rsync.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:69:29:4b:f3:c8:d1:a5:1f:d5:f6:4b:9f:a1:02:8a:51:2e:11:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479 Validity Not Before: May 3 02:16:44 2026 GMT Not After : May 2 02:21:44 2027 GMT Subject: CN=0F513B112AD944EB84C5E5D4BB2CB179F4916E51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:68:87:2c:fb:b6:ae:11:21:f9:ca:13:3a:99: a1:5b:a3:89:37:bc:fe:cb:d8:e2:3f:91:4e:2d:65: 08:d7:9b:a8:d1:55:14:e2:f3:1c:65:bf:28:96:a1: 80:6f:35:a8:02:3e:bb:b9:50:5b:80:2a:61:2f:9c: 73:5c:0f:96:25:bc:34:9a:5f:e0:0a:de:74:06:59: 8f:b2:8a:72:3b:33:8a:68:83:4a:f1:3c:f0:9f:d0: dd:f5:b8:12:7d:fd:14:7b:f5:30:65:21:31:48:36: b7:78:c6:a1:38:cb:5a:14:c3:17:cc:90:39:7e:1d: c9:4a:52:fd:fa:ac:a2:53:e2:68:d4:be:3d:55:f8: 49:8b:c3:6d:d6:c6:ee:3e:41:05:3e:bd:a5:42:21: d3:b1:52:ed:d3:fe:16:28:16:b7:19:8c:3c:23:05: 54:43:59:76:93:6a:a9:27:6f:6a:35:22:8e:94:7a: 85:a0:a7:79:04:bb:41:d3:aa:33:a1:9e:01:6a:42: 82:59:c4:78:e2:37:50:ed:70:be:1c:18:ac:e3:8d: 1d:1e:dc:30:81:ea:dd:55:24:b8:7a:5d:58:2d:98: c4:61:86:7b:37:4a:10:0b:02:21:37:42:65:d6:0d: c9:90:51:7b:4c:91:fd:bf:f3:40:9b:c3:d2:d1:a5: 3d:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:51:3B:11:2A:D9:44:EB:84:C5:E5:D4:BB:2C:B1:79:F4:91:6E:51 X509v3 Authority Key Identifier: keyid:EB:0B:E2:F2:F4:9F:0E:2E:D0:DC:A4:50:CC:7A:70:E3:7E:6C:44:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EB0BE2F2F49F0E2ED0DCA450CC7A70E37E6C4479.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/323430333a626163303a3a2f33322d3438203d3e20313333383135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:bac0::/32 Signature Algorithm: sha256WithRSAEncryption 8e:04:6f:5b:6d:6d:7b:cd:7a:99:be:9a:95:36:45:9b:2e:d5: c0:b8:3d:ea:5f:16:12:54:1a:e6:93:88:87:04:d2:31:8b:55: 7c:dd:90:18:06:42:21:0b:6c:34:d2:83:a4:f1:26:50:76:5c: b4:cb:5b:c7:61:d6:0e:76:5b:25:ee:0e:cf:56:f8:cc:99:97: 81:e0:a5:4b:78:44:3f:af:ce:23:34:14:26:0d:bc:6f:cb:96: 32:0b:33:da:44:14:41:38:6d:09:a1:e4:59:51:1f:68:0f:56: 4a:b2:d2:a0:b9:af:b2:9b:14:f2:91:87:db:75:03:cd:02:42: 8b:0c:94:0e:fe:64:7e:2a:33:a4:ac:9d:33:39:c4:cf:26:86: 1a:96:25:62:90:6b:ba:aa:63:94:ea:8e:05:03:59:8d:be:6b: 30:52:b6:fe:29:e9:9b:2e:a3:e8:00:d7:1b:b2:6f:74:51:01: cb:08:f9:bb:e8:81:c0:4e:84:ae:89:22:e8:c1:15:d8:e8:ca: 20:40:25:85:82:fd:b1:12:a9:0f:e9:95:dc:9f:3f:4f:31:a6: 66:21:7d:dc:cf:93:00:97:70:7a:83:81:cc:99:e7:36:9d:fd: a6:35:68:bd:59:b5:4c:d2:54:e9:68:aa:16:50:fa:6d:99:4f: 77:ce:5b:5f -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgIUCmkpS/PI0aUf1fZLn6ECilEuEVMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUIwQkUyRjJGNDlGMEUyRUQwRENBNDUwQ0M3QTcwRTM3 RTZDNDQ3OTAeFw0yNjA1MDMwMjE2NDRaFw0yNzA1MDIwMjIxNDRaMDMxMTAvBgNV BAMTKDBGNTEzQjExMkFEOTQ0RUI4NEM1RTVENEJCMkNCMTc5RjQ5MTZFNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoaIcs+7auESH5yhM6maFbo4k3 vP7L2OI/kU4tZQjXm6jRVRTi8xxlvyiWoYBvNagCPru5UFuAKmEvnHNcD5YlvDSa X+AK3nQGWY+yinI7M4pog0rxPPCf0N31uBJ9/RR79TBlITFINrd4xqE4y1oUwxfM kDl+HclKUv36rKJT4mjUvj1V+EmLw23Wxu4+QQU+vaVCIdOxUu3T/hYoFrcZjDwj BVRDWXaTaqknb2o1Io6UeoWgp3kEu0HTqjOhngFqQoJZxHjiN1DtcL4cGKzjjR0e 3DCB6t1VJLh6XVgtmMRhhns3ShALAiE3QmXWDcmQUXtMkf2/80Cbw9LRpT2jAgMB AAGjggIzMIICLzAdBgNVHQ4EFgQUD1E7ESrZROuExeXUuyyxefSRblEwHwYDVR0j BBgwFoAU6wvi8vSfDi7Q3KRQzHpw435sRHkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmEzYWU0ODUtYTY1OC00YzVjLWFiZTItMWU3ZmQ4YjAzOGEwLzAvRUIwQkUyRjJG NDlGMEUyRUQwRENBNDUwQ0M3QTcwRTM3RTZDNDQ3OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FQjBCRTJGMkY0OUYwRTJFRDBEQ0E0NTBDQzdBNzBFMzdFNkM0 NDc5LmNlcjCBowYIKwYBBQUHAQsEgZYwgZMwgZAGCCsGAQUFBzALhoGDcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvLzJhM2FlNDg1LWE2NTgtNGM1Yy1h YmUyLTFlN2ZkOGIwMzhhMC8wLzMyMzQzMDMzM2E2MjYxNjMzMDNhM2EyZjMzMzIy ZDM0MzgyMDNkM2UyMDMxMzMzMzM4MzEzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDusAwDQYJKoZI hvcNAQELBQADggEBAI4Eb1ttbXvNepm+mpU2RZsu1cC4PepfFhJUGuaTiIcE0jGL VXzdkBgGQiELbDTSg6TxJlB2XLTLW8dh1g52WyXuDs9W+MyZl4HgpUt4RD+vziM0 FCYNvG/LljILM9pEFEE4bQmh5FlRH2gPVkqy0qC5r7KbFPKRh9t1A80CQosMlA7+ ZH4qM6SsnTM5xM8mhhqWJWKQa7qqY5TqjgUDWY2+azBStv4p6Zsuo+gA1xuyb3RR AcsI+bvogcBOhK6JIujBFdjoyiBAJYWC/bESqQ/pldyfP08xpmYhfdzPkwCXcHqD gcyZ5zad/aY1aL1ZtUzSVOloqhZQ+m2ZT3fOW18= -----END CERTIFICATE-----Generated at Wed May 13 14:27:49 2026 by rpki-client